2 matches found
OpenSNS SQL blind injection vulnerability (CNVD-2021-101547)
OpenSNS is a comprehensive social software developed by Thinking Sky. A SQL blind injection vulnerability exists in the pid parameter in /Controller/ChinaCityController.class.php in OpenSNS version 6.1.0. An attacker can exploit this vulnerability to obtain sensitive database information...
OpenSNS SQL Blind Betting Vulnerability
OpenSNS is a comprehensive social software developed by Thinking Sky. A SQL blind injection vulnerability exists in the cid parameter in /Controller/ChinaCityController.class.php in OpenSNS version 6.1.0. An attacker can exploit this vulnerability to obtain sensitive database information...